isdn callback with TACACS+

From: Tony Schaffran (tschaffran@cconlinelabs.com)
Date: Fri Aug 29 2003 - 22:48:07 GMT-3

• Next message: Å°³ë: "(Re): RE : GRE-Tunnel's Question..!!"
• Previous message: MMoniz: "RE: log and log-input"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I am probably missing something really stupid.

This config worked a couple of days ago. I copied and saved the configs
after a successful test. Today, I tried to paste the config back in and now
my callback only lasts 2 seconds. What am I missing? I have been through
this over and over.

Now before you come back with a quick answer that I am missing something,
this is ISDN callback with TACACS+. My callback strings are being properly
returned from the AAA server. The callback is initiated and completes
successfully. It just disconnects after 2 seconds.

Thank you in advance.

***** Callback Server *****

hostname r6

!

aaa new-model

!

!

aaa authentication login none none

aaa authentication ppp default group tacacs+ local

aaa authorization network default group tacacs+

aaa session-id common

ip subnet-zero

!

!

isdn switch-type basic-ni

!

!

interface Loopback0

 ip address 6.6.6.6 255.255.255.255

!

interface Ethernet0/0

 ip address 150.52.111.11 255.255.255.0

 half-duplex

!

!

interface BRI1/0

 no ip address

 encapsulation ppp

 dialer rotary-group 1

 dialer-group 1

 isdn switch-type basic-ni

 isdn spid1 50355560010101 5556001

 isdn spid2 50355560020101 5556002

!

!

interface Dialer1

 ip address 10.1.1.6 255.0.0.0

 encapsulation ppp

 dialer in-band

 dialer idle-timeout 60

 dialer enable-timeout 5

 dialer hold-queue 20

 dialer aaa

 dialer-group 1

 no peer default ip address

 ppp callback accept

 ppp authentication chap callin

!

ip tacacs source-interface Loopback0

!

!

dialer-list 1 protocol ip permit

!

!

tacacs-server host 150.52.111.100 key cisco

tacacs-server directed-request

***** Callback Client *****

hostname r5

!

!

username r6 password 0 cisco

!

isdn switch-type basic-ni

!

!

interface BRI1/0

 no ip address

 encapsulation ppp

 dialer pool-member 1

 isdn switch-type basic-ni

 isdn spid1 50355550010101 5555001

 isdn spid2 50355550020101 5555002

 ppp authentication chap

!

!

interface Dialer1

 ip address 10.1.1.5 255.0.0.0

 encapsulation ppp

 dialer pool 1

 dialer idle-timeout 60

 dialer string 5556001

 dialer hold-queue 20

 dialer-group 1

 no peer default ip address

 no fair-queue

 no cdp enable

 ppp callback request

 ppp authentication chap

!

!

dialer-list 1 protocol ip permit

!

Tony Schaffran

Network Analyst

CCIE #11071

CCNP, CCNA, CCDA,

NNCDS, NNCSS, CNE, MCSE

www.cconlinelabs.com <http://www.cconlinelabs.com/>

Your #1 choice for online Cisco rack rentals.

• Next message: Å°³ë: "(Re): RE : GRE-Tunnel&#39;s Question..!!"
• Previous message: MMoniz: "RE: log and log-input"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Sep 02 2003 - 18:54:10 GMT-3